Rohan Jaitley: Central Gov't Standing Counsel for Justice
Advanced infrastructure as foundation for e-democracy solutions - Daniel Danilovski
1. Advanced Infrastructure as a
Foundation for e-Democracy
Solutions
Daniel Danilovski,
Manager of Professional Services
Nextsense
2. Introduction
• Why do we need underlying infrastructure for e-Democracy
solutions
• What are the characteristics of such infrastructure
– Secure
– Available
– Expandable
– Interoperable
– Manageable
Advanced infrastructure as foundation for e-Democracy
solutions 2
3. Current environment
• Isolated Islands, silos
• Difficult or No integration at all
• Poor scalability, difficult management, questionable security
• No high availability or disaster recovery
Automated e-mail management system? 2007 2008
Yes 21% 21%
Planning or considering 32% 25%
No and not planning or considering 47% 54%
Source: World e-Parlament Report
Survey 2009,
Advanced infrastructure as foundation for e-Democracy
solutions 3
4. Modern ICT Infrastructure Ingredients
• Directory services
• Messaging & collaboration
• Security
• Mobility
• High availability and disaster resilience
• Virtualization
• Management
Advanced infrastructure as foundation for e-Democracy
solutions 4
5. Directory Service
• Stores directory data
• Manages communication
between users and domains,
– including user logon processes,
authentication, and directory
searches
• Manage policies applied to Microsoft Active Directory is
users and computers most commonly used Directory
Services
Advanced infrastructure as foundation for e-Democracy
solutions 5
6. Directory services - Extensions
• Certificate Services – PKI
– Services for issuing digital certificates for
authentication between devices, users, and
applications.
– enables secure exchange of information
– strong authentication
– and secure communication across the Internet,
extranets, intranets, and applications
• Digital Rights Management
– help prevent sensitive information from
intentionally or accidentally getting into the
wrong hands
Advanced infrastructure as foundation for e-Democracy
solutions 6
7. Messaging – Unified communication
• Unified communication enhances e-mail messaging
– E-mail, instant messaging, voicemail, fax
• Securely Accessible from anywhere
– and any device
• Accessible anytime (high availability, disaster recovery)
• Keeping messaging hygiene
• Retention policies, archiving
• Must support ever incising volumes of data
Advanced infrastructure as foundation for e-Democracy
solutions 7
8. Messaging Hygiene
Spam
X
Viruses
X
Unwanted mail E-mail firewall/
X SMTP gateway
X
Spam & viruses from
compromised computers
X
Confidential / disallowed
outbound email
Advanced infrastructure as foundation for e-Democracy
solutions 8
9. Messaging continued
DR Site
Manageement
Archiving
& Discovery
Authorized
users
Mail gateway
External
mail servers
Backup Server
Mobile devices
Data Leakage
Protection
Tape Disk
Advanced infrastructure as foundation for e-Democracy
solutions 9
10. Security
• Ongoing process
• Defense in depth
– Perimeter
• Firewalls, content filtering & control, mail
gateways, IPS
– Wireless
– Securing server & workstations
• Patching & updating
X X X
• Antivirus & antyspyware
– Securing stored data and in transport
– Network – NAP
– People & processes
Advanced infrastructure as foundation for e-Democracy
solutions 10
11. Mobility
• Allow authenticated users to
access information anytime
• Not a commodity, it’s a must
• Until now – e-mail access,
limited access to portals
• VPN for full network access
– Limited from some networks and
hotels
Advanced infrastructure as foundation for e-Democracy
solutions 11
12. Mobility, continued
• What if you can securely access your internal resources
anytime you get internet connection?
• Always ON scenario is possible
• Always (secure) access to internal information, services and
applications
• Always on also means always managed by administrators
policies
– Updates, antivirus definitions, new or changed policies…
Advanced infrastructure as foundation for e-Democracy
solutions 12
13. Mobility, continued
• Direct Access Technology
– Windows 2008 R2 and Windows 7 (enterprise/ultimate)
– Unified Access Gateway (optional)
• Uses IPv6, IPSec, PKI, NAP for strong authentication
encryption and client health validation
• Can also use certificates and smartcards for user
authentication as additional layer of security
Advanced infrastructure as foundation for e-Democracy
solutions 13
14. Mobility, Continued
Internal resources
Windows 7
Windows 2008
Direct Access Server
UAG - optional
Internal traffic
Internet traffic
Internet servers
Advanced infrastructure as foundation for e-Democracy
solutions 14
15. High Availability and Disaster Resilience
• Everybody wants uninterrupted services!
• Define and prioritize your mission critical services?
• What is the required uptime for those
– 99.9? 99.99? 99.999? 99.999999……99?
• More nines often means more $$$$$ (licenses and HW)
• Start by defining RTO & RPO
• Combine different technologies and products to achieve
your goals
• Do not forget about backup, regardless all other HA/DR
mechanisms in place
Advanced infrastructure as foundation for e-Democracy
solutions 15
16. High Availability and Disaster Resilience
• Simple, low cost scenario for business continuity
Main Site DR Site
Protected Server Convert System Hyper-V or ESX Host
Automatic
conversion, as
per schedule
Advanced infrastructure as foundation for e-Democracy 16
solutions
17. Virtualisation
• Hot topic, helping to make ICT greener
• Virtualizing everything
– Server virtualization, application virtualization , desktop/session
virtualization
• Already available good HA mechanisms and dynamic
memory management
• Also introducing challenges:
– Security
– Management
– Backup
Advanced infrastructure as foundation for e-Democracy
solutions 17
18. Virtualisation, continued
• Production server consolidation
• Consolidate low-utilization workloads
• Legacy OS and application re-hosting
• Resource partitioning (limit resources per VM)
• Business continuity management
• Workload deployment and provisioning
• OS and application patching (swap VMs)
• Isolation / sandboxing
• Dynamic data center
• Workload mobility
• Development and test
• Rapid provisioning of multiple virtual machines
• Undo-disk and save state helpful
Advanced infrastructure as foundation for e-Democracy
solutions 18
19. Management
• Managing Servers (physical or virtual), workstation even
mobile devices
– Operating System Deployment
– Software Distribution
– Software Update Management
– Asset Intelligence
– Desired Configuration Management
• Recommendation to use specialized suites
– Symantec Altiris suit
– Microsoft System Center portfolio
Advanced infrastructure as foundation for e-Democracy
solutions 19
20. How to get there
1 Define long term goals
2 Research available solutions and technologies
3 Divide large infrastructure project into phases
4 Invest in people
Advanced infrastructure as foundation for e-Democracy
solutions 20
21. “ It is not the beauty of a building you
should look at; its the construction of
the foundation that will stand the test
of time.
“
David Allan Coe
Advanced infrastructure as foundation for e-Democracy
solutions 21